Add podman role and improve playbook organization

This PR adds a new podman role, see #18. The playbook is merged into sections for each group of hosts that we want to deploy to. To limit by role now, use tags, such as `-t role::podman`.
author: Johannes Christ <[email protected]> 2022-02-01 22:28:06 +0100
committer: Joe Banks <[email protected]> 2022-02-05 14:31:37 +0000
commit: 761a8e124e84a82bd2272228cbff2a1260456f51 (patch)
tree: b6f7c3138498e05ec2c679a1e34ee9657f3d8848 /roles/ufw/tasks
parent: Epand entire dict when adding psql users and databases (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/roles/ufw/tasks/main.yml b/roles/ufw/tasks/main.yml
index ae6093b..1204060 100644
--- a/roles/ufw/tasks/main.yml
+++ b/roles/ufw/tasks/main.yml
@@ -4,16 +4,22 @@
     cache_valid_time: 3600
     pkg:
       - ufw
+  tags:
+    - role::ufw
 
 - name: Allow OpenSSH
   community.general.ufw:
     rule: allow
     name: OpenSSH
+  tags:
+    - role::ufw
 
 - name: Enable UFW and deny all traffic by default
   community.general.ufw:
     state: enabled
     policy: deny
+  tags:
+    - role::ufw
 
 - name: Allow WireGuard
   community.general.ufw:
@@ -21,7 +27,11 @@
     proto: udp
     port: "{{ wireguard_port }}"
     comment: "Allow WireGuard"
+  tags:
+    - role::ufw
 
 - name: Apply service-specific rules
   community.general.ufw: "{{ item }}"
   with_items: "{{ rules }}"
+  tags:
+    - role::ufw
author	Johannes Christ <[email protected]>	2022-02-01 22:28:06 +0100
committer	Joe Banks <[email protected]>	2022-02-05 14:31:37 +0000
commit	761a8e124e84a82bd2272228cbff2a1260456f51 (patch)
tree	b6f7c3138498e05ec2c679a1e34ee9657f3d8848 /roles/ufw/tasks
parent	Epand entire dict when adding psql users and databases (diff)